You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cloudstack.apache.org by "ASF subversion and git services (JIRA)" <ji...@apache.org> on 2014/10/07 12:19:34 UTC

[jira] [Commented] (CLOUDSTACK-7087) [VR] [VPN] Downgrade openswan to previous version for VPN services to fix OSX client

    [ https://issues.apache.org/jira/browse/CLOUDSTACK-7087?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14161731#comment-14161731 ] 

ASF subversion and git services commented on CLOUDSTACK-7087:
-------------------------------------------------------------

Commit d0db137d808f924dedf372d6824bc09f98e0135c in cloudstack's branch refs/heads/4.2 from [~harikrishna.patnala]
[ https://git-wip-us.apache.org/repos/asf?p=cloudstack.git;h=d0db137 ]

CLOUDSTACK-7087: Downgrade openswan to previous version for VPN services to fix OSX client Downgrading openswan version to 1:2.6.37-3

Signed-off-by: Jayapal <ja...@apache.org>


> [VR] [VPN] Downgrade openswan to previous version for VPN services to fix OSX client
> ------------------------------------------------------------------------------------
>
>                 Key: CLOUDSTACK-7087
>                 URL: https://issues.apache.org/jira/browse/CLOUDSTACK-7087
>             Project: CloudStack
>          Issue Type: Bug
>      Security Level: Public(Anyone can view this level - this is the default.) 
>          Components: Virtual Router
>    Affects Versions: 4.2.0, 4.3.0
>            Reporter: Sheng Yang
>            Assignee: Harikrishna Patnala
>             Fix For: 4.4.0, 4.3.1
>
>
> Latest OpenSwan fail to work with OSX/IOS after latest Debian security update(Mar 2014, https://www.debian.org/security/2014/dsa-2893 ).
> And why Debian didn’t fix it officially, is because Debian decided to drop the support for OpenSwan(since nobody is maintaining it and it hasn’t been updated for 2 years before this security fix). We would need to move to other VPN software in the future.
> Here is the Debian bugzilla for the issue. https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=744717
> So far, downgrade openswan is only an intermediate solution. We need to move to other VPN software(e.g. StrongSwan) which is still maintained by Debain in the near future.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)